Cybersecurity Manager

General Purpose

The Cybersecurity Manager is responsible for leading PACS Services’ cybersecurity team and overseeing the enterprise-wide security posture in a complex healthcare and public company environment. This position ensures that all security operations, compliance mandates, and risk management efforts align with HIPAA, SOX, and other regulatory standards. The manager will serve as a key leader in the development and implementation of cybersecurity programs, incident response protocols, and security governance practices. Reporting to senior IT leadership, this role acts as the primary point of contact between PACS and third-party security providers while promoting a proactive and resilient cybersecurity culture.

Essential Duties

·  Cybersecurity Leadership & Oversight

• Lead and develop a high-performing cybersecurity team through mentorship, performance management, and skill development.
• Define the strategic direction of the cybersecurity program in alignment with organizational goals and evolving threats.
• Foster a security-first culture across the organization by engaging with stakeholders and delivering consistent, effective communication.

·  Governance, Risk & Compliance

• Maintain and evolve PACS Services' cybersecurity governance framework to support HIPAA, SOX, and other applicable regulations.
• Oversee the execution of regular risk assessments, vulnerability scans, and security audits; ensure timely resolution of identified issues.
• Collaborate with compliance, legal, and business leaders to align cybersecurity efforts with broader governance policies and audit requirements.

·  Security Operations & Incident Response

• Manage daily security operations, including event monitoring, threat detection, alert triage, and response coordination.
• Develop, test, and refine incident response and disaster recovery procedures and ensure documentation is up to date.
• Lead investigations of security breaches and incidents, perform root-cause analyses, and implement corrective actions.

·  Security Architecture & Technology Management

• Evaluate, implement, and manage security tools and technologies such as SIEM, EDR, identity management, and encryption systems.
• Collaborate with IT infrastructure, cloud, and application teams to integrate security into architecture and DevOps practices.
• Ensure appropriate access controls are implemented and maintained across all systems and data environments.

·  Awareness, Training & Communication

• Design and deliver cybersecurity awareness training programs tailored to various employee roles and technical maturity levels.
• Produce regular updates, dashboards, and risk reports for executive leadership and board-level reporting.
• Advocate for security priorities in IT and business planning sessions, balancing risk mitigation with operational needs.

·  Collaboration & Strategic Integration

• Serve as the primary point of contact for external cybersecurity partners, threat intelligence feeds, and managed service providers.
• Partner with IT and business leaders to ensure new projects and technologies incorporate appropriate security controls from inception.
• Participate in IT steering committees and cross-functional working groups to promote secure and sustainable technology practices.

·  Continuous Improvement & Innovation

• Stay informed of emerging threats, regulatory changes, and industry trends; assess impact and update security strategies accordingly.
• Continuously seek opportunities to improve processes, tools, and team capabilities to strengthen PACS’ security posture.
• Lead tabletop exercises, red/blue team simulations, and lessons-learned reviews to improve organizational readiness.